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Examiner 
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2132 



The MAILING DATE of this communication appears on the cover sheet with the correspondence address 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)B Responsive to communication(s) filed on 14 June 2005 . 
2a)|3 This action is FINAL. 2b)D This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 C:D. 11, 453 O.G. 213. 

Disposition of Claims 

4) S Claim(s) 1-8 and 12-24 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) E3 Claim(s) 5-8 and 16-24 is/are allowed. 

6) S Claim(s) 1-4 and 12-15 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) Q Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) S The drawing(s) filed on 02 June 2000 is/are: a)E3 accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 185(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2.D Certified copies of the priority documents have been received in Application No. . 



3.D Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 
Response to Amendment 

1 . This action is in response to the amendment filed 06/14/2005. Claims 1 , 4-5, 8 
and 21 have been amended. 



Response to Arguments 

2. Applicant's arguments with respect to claims 1 and 4 have been considered but 
are not persuasive. Applicant's amendments have necessitated a new search and new 
grounds of rejection. 

Claim Rejections - 35 USC § 102 

3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 1 02 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in a patent granted on an application for patent by another filed in the 
United States before the invention thereof by the applicant for patent, or on an international application 
by another who has fulfilled the requirements of paragraphs (1 ), (2), and (4) of section 371 (c) of this 
title before the invention thereof by the applicant for patent. 

The changes made to 35 U.S.C. 102(e) by the American Inventors Protection Act 
of 1999 (AIPA) and the Intellectual Property and High Technology Technical 
Amendments Act of 2002 do not apply when the reference is a U.S. patent resulting 
directly or indirectly from an international application filed before November 29, 2000. 
Therefore, the prior art date of the reference is determined under 35 U.S.C. 102(e) prior 
to the amendment by the AIPA (pre-AlPA 35 U.S.C. 102(e)). 
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4. Claims 1-3 and 12-13 are rejected under 35 U.S.C. 102(e) as being anticipated 
by Fuh et al (6,463,474). 

Regarding claim 1, Fuh discloses a method for authenticating a user of a client 
computer comprising the steps of: receiving a service request from the user at a first 
data processing agent (fig. 3; fig. 7A, step 702); submitting an authentication request 
from the first data processing agent to a second data processing agent to authenticate 
the user (fig. 7B, step 728); receiving a response to the authentication request at the 
first data processing agent from the second data processing agent, wherein if the user 
is successfully authenticated, the response includes authentication information that the 
first data processing agent can use to subsequently re-authenticate the user without 
submitting a subsequent authentication request to the second data processing agent 
(fig. 7B, step 732); and if the received response indicates that the user is successfully 
authenticated, providing the requested service to the user (fig. 7B, step 740). 

Regarding claim 2, Fuh further discloses that the received response includes a 
level of access privileges for the user, and the providing step includes the step of 
determining the service provided to the user based upon the user's access privilege 
level (col. 2, line 66 - col. 3, line 18; col. 8, lines 30-37; col. 13, line 60 - col. 14, line 
30). 

Regarding claim 3, Fuh further discloses that the first data processing agent is 
included in a firewall router which constitutes a server and that the second data 
processing agent is included in an AAA server (figures 3-4). 
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Regarding claim 12, Fuh further discloses that the authentication information 
includes a user name and a password associated with the user (col. 8, lines 30-37; col. 
12, lines 30-56). 

Regarding claim 13, Fuh further discloses that the authentication information is 
stored at the first data processing agent and used to authenticate the user without 
submitting a subsequent authentication request to the second data processing agent 
(col. 12, lines 30-56). 

Claim Rejections - 35 USC § 103 

5. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

6. Claims 4 and 14-15 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Fuh in view of Moriconi et al. (6,158,010). 

Regarding claim 4, Fuh discloses a system comprising a first data processing 
agent configured to receive a service request from a user and submit an authentication 
request from the first data processing agent to a second data processing agent to 
authenticate the user (fig. 3; fig. 7A, step 702; fig. 7B, step 728); a second data 
processing agent configured to receive the authentication request, attempt to 
authenticate the user, and transmit a response indicative or whether the user is 
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successfully authenticated, the response includes authentication information that the 
first data processing agent can use to subsequently re-authenticate the user without 
submitting a subsequent authentication request to the second data processing agent 
(fig. 7B, step 732). Fuh does not disclose that the data processing agents are on the 
same server. Moriconi et al. disclose that two data processing agents are implemented 
on the same server (col. 1 0, line 64 - col. 1 1 , line 6). It would have been obvious to one 
of ordinary skill in the art at the time the invention was made modify the Fuh system 
such that the first and second data processing agents are implemented on the same 
server, as taught by Moriconi, in order to provide maximum performance and minimize 
network traffic overhead. 

Regarding claim 14, Fuh further discloses that the authentication information 
includes a user name and a password associated with the user (col. 8, lines 30-37; col. 
12, lines 30-56). 

Regarding claim 15, Fuh further discloses that the authentication information is 
stored at the first data processing agent and used to authenticate the user without 
submitting a subsequent authentication request to the second data processing agent 
(col. 12, lines 30-56). 



Allowable Subject Matter 

7. Claims 5-8 and 1 6-24 are allowed. 
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8. The following is an examiner's statement of reasons for allowance. Claims 5-7 
and 16-20 are directed to an authentication method in a distributed environment in 
which a first data processing agent utilizes a second data processing agent for 
authenticating a first request for service from a user received at the first data processing 
agent, and the second data processing agent monitors an inactivity timeout period 
associated with the user's session with the first data processing agent. More 
specifically, independent claim 5 identifies the uniquely distinct feature: "if a second 
request is received from the user at another of the plurality of first data processing 
agents before the first time period is exceeded, restarting the first timeout period". The 
closest prior art, Gupta et al (6,226,752), discloses an authentication method in a 
distributed environment in which the first timeout period is restarted if a second request 
of the same session is received; however, Gupta does not teach that the first timeout 
period is restarted if a second request is received from the user at another first data 
processing agent. The prior art, taken either singly or in combination, fails to anticipate 
or fairly suggest the limitations of applicant's independent claim, in such a manner that a 
rejection under 35 U.S.C 102 or 103 would be proper. The claimed invention is 
therefore considered to be in condition for allowance as being novel and nonobvious 
over prior art. 

Claims 8 and 21-24 are system claims corresponding to the method claims 5-7 
and 16-20 and, therefore, are allowed for the same reasons. 

Any comments considered necessary by applicant must be submitted no later 
than the payment of the issue fee and, to avoid processing delays, should preferably 
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accompany the issue fee. Such submissions should be clearly labeled "Comments on 
Statement of Reasons for Allowance." 

Conclusion 

9. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 
§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Minh Dinh whose telephone number is 571-272-3802. 
The examiner can normally be reached on Mon-Fri: 10:00am-6:30pm. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on 571-272-3799. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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Examiner 
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